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Amendments to the Claims : 
This listing of claims replaces all prior versions and listings of claims in the application: 

Listing of Claims : 

1-30. (Cancelled). 

3 1 . (Currently Amended) A method for controlling cryptographic functions of an 
application program, the method comprising: 

accessing a policy file that refl e cts a condition of th e policy fil e and that includes an 
attribute portion configured to store one or more cryptographic policy attributes and a value 
portion having one or more attribute values, each attribute value corresponding to a 
cryptographic policy attribute and indicating whether an application program may use the 
cryptographic policy a function capable of being performed by the application program and 
represented by the cryptographic policy attribute , and a signature portion including at least one 
digital certificate ; 

determining whether the policy file is unaltered based on the signature portion of the 
policy file ; 

s e l e ctively retrieving at least one of the attributes and, for each retrieved attribute, an 
attribute value corresponding to the attribute e ncryption information and d e cryption information 
from the policy file; 

determining whether a function represented by a retrieved attribute is permitted to be 
accessed by the application program; 

selectively proc e ssing th e r e tri e v e d e ncryption information and d e cryption information 
from th e policy fil e in accordanc e with a pr e d e t e rmin e d capability condition ; and 

providing at l e ast on e of allowabl e e ncryption l e vels and d e cryption l e v e ls to permitting 
the application program to access the function conditioned upon a determination that the policy 
file is unaltered. 
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32. (Previously Presented) The method of claim 31 wherein the policy file comprises 
a JAVA archive file. 

33. (Previously Presented) The method of claim 31 wherein the policy file comprises 
multiple component files, at least one of the component files storing some of the attribute 
portions and attribute values. 

34. (Previously Presented) The method of claim 33 wherein at least one of the 
multiple component files is associated with a signature portion including at least one digital 
certificate for ensuring that the policy file has not been modified and a signature portion 
including at least one digital certificate for ensuring that the policy file has not been modified 
and applying to a particular component file. 

35. (Cancelled) 

36. (Currently Amended) The method of claim 31 wherein; 

the policy fil e includ e s a signature portion applies to the attribution portion and the value 
portion of the policy file; inc hiding at least on e digital c e rtificat e for ensuring that th e policy fil e 
has not b e en modifi e d 

determining whether the policy file is unaltered comprises determining whether the 
attribute portion and the value portion are unaltered based on the signature portion . 

37. (Previously Presented) The method of claim 36 wherein the signature portion 
applies to the policy file. 

38. (Currently Amended) The method of claim 31 wherein: 

'e ach of th e cryptographic policy attribut e s includ e s an indication of th e cryptographic 
capabilities of th e application program, and 

each of the attribute values is one of a string, an integer number, and a truth expression. 
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39. (Previously Presented) The method of claim 38 wherein the truth expression is 
one of a true flag, a false flag, and a conditional flag. 

40. (Currently Amended) An apparatus for controlling cryptographic functions of an 
application program, the apparatus comprising a proc e ssor conn e ct e d to storag e and on e or mor e 
input/output d e vic e s, wh e r e in th e proc e ssor is being configured to: 

access a policy file that r e fl e cts a condition of th e policy fil e and that includes an attribute 
portion configured to store one or more cryptographic policy attributes and a value portion 
having one or more attribute values, each attribute value corresponding to a cryptographic policy 
attribute and indicating whether an application program may use a function capable of being 
performed by the application program and th e cryptographic policy represented by the 
cryptographic policy attribute , and a signature portion including at least one digital certificate ; 

determine whether the policy file is unaltered based on the signature portion of the policy 



s e l e ctiv e ly retrieve at least one of the attributes and, for each retrieved attribute, an 
attribute value corresponding to the attribute e ncryption information and d e cryption information 
from the policy file; 

determining whether a function represented by a retrieved attribute is permitted to be 
accessed by the application program; 

s e l e ctiv e ly process th e r e tri e v e d e ncryption information and d e cryption information from 
th e policy fil e in accordanc e with a pr e d e t e rmin e d capability condition ; and 

provid e at l e ast on e of allowabl e encryption l e v e ls and d e cryption lev e ls to permitting the 
application program to access the function conditioned upon a determination that the policy file 
is unaltered. 



file; 



41 . (Previously Presented) The apparatus of claim 40 wherein the policy file 
comprises a JAVA archive file. 
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42. (Previously Presented) The apparatus of claim 40 wherein the policy file 
comprises multiple component files, at least one of the component files storing some of the 
attribute portions and attribute values. 

43. (Previously Presented) The apparatus of claim 42 wherein at least one of the 
multiple component files is associated with a signature portion including at least one digital 
certificate for ensuring that the policy file has not been modified and the signature portion 
applying to a particular component file. 

44. (Cancelled) 

45. (Currently Amended) The apparatus of claim 40 wherein the policy fil e includ e s 
a signature portion applies to the attribute portion and the value portion of the policy file; 
including at l e ast on e digital c e rtificat e for e nsuring that th e policy fil e has not b ee n modifi e d 

determining whether the policy file is unaltered comprises determining whether the 
attribute portion and the value portion are unaltered based on the signature portion . 

46. (Previously Presented) The apparatus of claim 45 wherein the signature portion 
applies to the policy file. 

47. (Currently Amended) The apparatus of claim 40 wherein: 

each of th e cryptographic policy attribut e s includ e s an indication of th e cryptographic 
capabilities of th e application program, and 

each of the attribute values is one of a string, an integer number, and a truth expression. 

48. (Previously Presented) The apparatus of claim 47 wherein the truth expression is 
one of a true flag, a false flag, and a conditional flag. 



